Data Security & Privacy Strategist
Join us as we pursue our vision to make machine data accessible, usable, and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we are committed to our work, our customers, having fun, and most importantly, to each other’s success. Learn more about Splunk careers and how you can become a part of our team.
Job Description: That’s a cool job! I want it!
We seek an experienced and highly motivated Privacy Analyst to support and mature Splunk’s data protection initiatives globally. This role presents an exciting opportunity to be a key player in Splunk’s incident response program, influence product and services development, and craft policy and practices inside a data analytics company. This role works with the Law & Global Affairs Director, Data Protection, Security & IT, and will help ensure that Splunk’s contractual, legal, and regulatory obligations to protect data are in place. In this role, you will support our Security and Incident Response programs, including tracking incidents, assisting in refining and building out our enterprise-wide efforts, and leading the charge on incident response global developments. If you are a diligent and dedicated critical thinker who can work independently and collaboratively, we are looking for someone like you to join our collegial and dynamic team! Splunk is headquartered in the San Francisco Bay Area; this position is based in the Washington, DC Metro area.
Personal Characteristics and Skills: How can I succeed at Splunk?
The successful candidate will:
- Apply an analytical/business minded approach to legal issues focused on security and data protection;
- Have a passion for data protection;
- Communicate clearly and concisely, adapting to the needs of different organizations;
- Express complex ideas in easily understandable terms;
- Prioritize and drive multiple initiatives to conclusion independently and in a timely manner;
- Demonstrate EQ skills in the face of challenges and be creative in finding solutions;
- Work closely with a broad range of colleagues in the U.S. and globally to facilitate a coordinated team approach;
- Maintain a sense of humor and camaraderie within the Data Protection Team and with our business partners across Splunk.
Responsibilities: I want and can do that!
The successful candidate will:
- Serve as a main point of contact in the Data Protection Team’s Incident Response Program;
- Facilitate and coordinate the Data Protection Team’s Incident Response dashboards, templates and playbooks;
- Standardize, operationalize and coordinate Security and Incident Response processes for efficiency;
- Identify training opportunities and develop data security training materials;
- Support daily operations for Splunk’s global incident response team and manage security events globally;
- Work with our attorneys to build Splunk's practices globally to ensure ongoing compliance with applicable data protection laws, policies, guidelines, and processes.
Requirements: I’ve already done that or have that!
Candidates must have:
- At least 5-10 years participating in and managing cyber security incidents, including investigation, identification of potential legal issues, and communications to internal and external Customers and Partners;
- Bachelor’s degree in Information Systems, Information Technology, or related field;
- 1-3 years of experience working in industries such as law, IP protection, fraud, compliance, or related fields;
- Proficiency in the requirements of key data protection compliance programs in the EU and US (e.g., GDPR, CCPA, HIPAA, FedRAMP, PCI-DSS);
- Strong interest in emerging data and cloud technologies, network infrastructure, analytic tools and, cyber security best practices;
- Familiarity with new technologies, network and cyber security, infrastructure resiliency, cloud computing, and cloud security;
- Excellent collaboration, organizational, interpersonal, and project management skills;
- Strong written and verbal communication skills with demonstrated experience engaging a wide range of organizational partners;
- Ability to engage successfully with stakeholders in various business functions at Splunk;
- Proficiency in Google Docs, Sheets, Slides, Microsoft Word, Excel, and PowerPoint – prior experience with OneTrust a plus;
- One or more of the following certifications: CISSP, SANS GCIH, GCIA, GNFA, GREM;
- Capacity to handle other responsibilities as needed.
(Colorado only*) Minimum base salary of $110,000.00. You may also be eligible for incentive pay + equity + benefits.*Note: Disclosure per sb19-085 (8-5-201 et seq).
Thank you for your interest in Splunk!
Splunk's Hiring Practices
Splunk turns machine data into answers. Organizations use market-leading Splunk solutions with machine learning to solve their toughest IT, Internet of Things and security challenges.
We value diversity, equity, and inclusion at Splunk and are committed to equal employment opportunity. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements. Click here to review the US Department of Labor’s EEO is The Law notice. Please click here to review Splunk’s Affirmative Action Policy Statement. If you need assistance or an accommodation to apply or during the hiring process, please let us know by completing our Accommodation Request form.
Splunk also has policies in place to protect the personal information candidates disclose to us as part of the application process. Please click here to review Splunk’s Career Site Privacy Policy.
Splunk does not discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Please click here to review Splunk’s Pay Transparency Nondiscrimination Provision.
Splunk is committed to the health and safety of our employees and customers. We comply with local, state/territory, and federal regulations to prevent the spread of COVID-19 in the countries in which we operate. Preventative measures may require individuals entering Splunk offices to be fully vaccinated and in some cases may require employees to show proof of full vaccination. Splunk provides reasonable accommodations for employees who have qualifying medical or religious reasons.
Splunk is also committed to providing access to all individuals who are seeking information from our website. Any individual using assistive technology (such as a screen reader, Braille reader, etc.) who experiences difficulty accessing information on any part of Splunk’s website should send comments to [email protected]. Please include the nature of the accessibility problem and your e-mail or contact address. If the accessibility problem involves a particular page, the message should include the URL of that page.
Splunk doesn't accept unsolicited agency resumes and won't pay fees to any third-party agency or firm that doesn't have a signed agreement with Splunk.